Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: Vcdkag5ux4T/DPFEi1MMQNoVJCNJrW8lxkPKziq29wM=
Subject key identifier: 7D:C7:90:7A:F6:C0:E3:B9:81:09:E2:39:3E:C0:19:4C:3A:A2:CB:90
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019E1D22DCD3452DA3733706A51DD9F10A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0FF8
Signing time: Tue 12 May 2026 17:01:24 +0000
Manifest this update: Tue 12 May 2026 17:01:24 +0000
Manifest next update: Wed 13 May 2026 17:01:24 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: oAaRZS1NuefMP5VqZtHp6Rm2sfWMb1QPgrepE0C7wbI=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:dc:d3:45:2d:a3:73:37:06:a5:1d:d9:f1:0a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: May 12 17:01:24 2026 GMT
Not After : May 13 17:01:24 2026 GMT
Subject: CN=7dc7907af6c0e3b98109e2393ec0194c3aa2cb90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a0:fb:6e:4e:1c:42:ac:5a:99:fa:b5:1c:67:
8d:89:e3:21:10:57:81:37:ff:a5:6a:8b:e7:4b:61:
da:39:e1:4f:11:3c:c9:bb:19:7e:88:40:7c:e1:16:
e1:d2:cc:8b:4c:d2:fe:5a:3a:11:dc:fd:59:ca:c9:
c7:32:78:0e:54:4c:b6:bd:7d:fe:16:d3:9c:10:de:
95:52:b9:1d:49:78:82:0b:9c:e4:d2:1c:09:1b:b3:
79:7a:d3:22:e9:21:2c:df:5a:b6:64:8b:7d:41:88:
70:7e:54:5f:1e:2c:ad:b6:ab:1b:37:1d:aa:94:0c:
35:f0:9a:8b:63:a8:44:a9:91:b7:07:fe:50:6e:2f:
86:f3:15:66:09:b6:29:0f:32:14:b1:33:ef:e5:c9:
0f:cb:04:62:20:d4:5b:ab:63:19:f3:1d:b5:f4:d2:
06:93:c5:15:10:47:ec:b1:25:a6:17:a2:d3:69:c7:
91:c9:85:c3:69:6a:a6:51:77:3a:bc:50:eb:92:43:
26:25:a6:24:b0:3b:61:e4:de:2b:8e:62:c9:82:40:
ba:2a:11:4d:8d:cf:96:cf:91:57:90:9f:aa:51:8a:
44:c8:11:67:2f:7e:8c:1e:20:1e:f3:3b:7e:8d:7d:
1e:c8:5f:15:d3:8c:f2:a0:27:a4:94:c4:33:50:51:
d7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C7:90:7A:F6:C0:E3:B9:81:09:E2:39:3E:C0:19:4C:3A:A2:CB:90
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:88:4d:00:90:11:de:5a:bf:06:54:1a:32:c7:d5:b9:8c:0c:
3d:9e:cf:46:d1:e8:63:17:9c:c2:80:ec:f1:23:46:e0:6a:d3:
7c:bb:03:67:1b:bf:85:11:55:f7:57:a8:49:02:cc:a0:51:96:
d5:0a:ca:1f:b5:20:7b:85:62:48:72:78:1c:45:8b:53:10:11:
66:1b:39:5b:47:8d:92:a0:70:a4:15:77:cf:23:1d:82:74:50:
fc:ca:a7:e5:c5:e7:0c:a7:6b:b9:db:d8:3e:22:fe:c4:9c:d3:
44:77:2e:1c:38:a9:71:f6:2f:4e:6f:80:38:42:48:fa:9c:9c:
d9:0c:ae:65:9b:a0:ae:24:2e:17:9f:bd:62:ab:b7:3c:d2:c6:
05:3d:e2:a1:76:4e:f0:0a:96:5b:5c:59:db:d9:91:d3:bb:1a:
c6:44:40:26:89:90:c9:03:83:57:0c:61:34:5e:5c:1d:ed:0b:
0b:cb:1e:d7:63:34:6d:b3:f6:c7:4b:c9:86:1b:8a:3b:d6:a7:
b8:9f:cf:67:ee:8a:9e:f7:1e:ec:23:d8:4c:bd:47:4d:1b:55:
4a:8b:a8:61:e7:b7:8a:99:ba:fc:8c:0a:74:29:58:6e:d5:d8:
89:b7:c9:39:0e:5e:69:1a:3a:b6:ec:01:14:be:aa:6f:09:f9:
bd:40:2f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:41:03 2026 by rpki-client